Dobrý den, chtěl bych Vás poprosit o kontrolu logu. Můj problém spočívá v pomalém načítání například videa z youtube, mnohdy i samotného internetu. Další problém je ztráta výkonu. I když mám režim napájení nastaven na rovnováhu, tak výkon jaksi neodpovídá. Budu vděčný za každou radu a předem děkuji.
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16450
Run by Emilio at 18:01:24 on 2013-01-15
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.4007.1640 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\FBAgent.exe
C:\Windows\system32\WLANExt.exe
C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\P4G\BatteryLife.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Windows\Explorer.EXE
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\AsScrPro.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASC.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe
C:\Users\Emilio\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Emilio\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Emilio\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Emilio\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Users\Emilio\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Emilio\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.babylon.com/?affID=114435&tt=3812_2&babsrc=HP_ss&mntrId=3e0b7646000000000000ac72891e0709
uURLSearchHooks: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - <orphaned>
uURLSearchHooks: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - <orphaned>
mURLSearchHooks: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - <orphaned>
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Pomocná služba pro přihlášení ke službě Windows Live ID: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - <orphaned>
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
uRun: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart
mRun: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
mRun: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
mRun: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
mRun: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
TCP: NameServer = 213.46.172.36 213.46.172.37
TCP: Interfaces\{49C68936-5817-4EBB-99B7-BB317DCB5AAB} : DHCPNameServer = 213.46.172.36 213.46.172.37
TCP: Interfaces\{E68110AB-8939-417A-9E3F-DF8EAA21DF8B} : DHCPNameServer = 213.46.172.36 213.46.172.37
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs= C:\Windows\SysWOW64\nvinit.dll
SSODL: WebCheck - <orphaned>
x64-BHO: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [SynAsusAcpi] C:\Program Files (x86)\Synaptics\SynTP\SynAsusAcpi.exe
x64-Run: [IntelPAN] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray
x64-Run: [BTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
x64-Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /SF3
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
Hosts: 127.0.0.1 validation.sls.microsoft.com
.
============= SERVICES / DRIVERS ===============
.
R0 nvpciflt;nvpciflt;C:\Windows\System32\drivers\nvpciflt.sys [2012-10-8 30056]
R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\System32\drivers\SmartDefragDriver.sys [2012-4-11 17720]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2013-1-15 370288]
R1 ATKWMIACPIIO;ATKWMIACPI Driver;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-5-25 17536]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver;C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2012-11-13 30592]
R2 AFBAgent;AFBAgent;C:\Windows\System32\FBAgent.exe [2011-10-22 379520]
R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-2 15416]
R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2013-1-15 25232]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-1-15 71600]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
R2 IMFservice;IMF Service;C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2012-4-11 821592]
R2 TurboB;Turbo Boost UI Monitor driver;C:\Windows\System32\drivers\TurboB.sys [2010-4-16 13832]
R3 AMPPAL;Virtuální adaptér Intel(R) Centrino(R) Bluetooth 3.0 + High Speed;C:\Windows\System32\drivers\AmpPal.sys [2011-4-21 294912]
R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2011-6-2 128488]
R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2011-6-2 401896]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2011-10-22 317440]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-10-22 413800]
S1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2013-1-15 984144]
S3 AMPPALP;Protokol Intel(R) Centrino(R) Bluetooth 3.0 + High Speed;C:\Windows\System32\drivers\AmpPal.sys [2011-4-21 294912]
S3 btmaux;Intel Bluetooth Auxiliary Service;C:\Windows\System32\drivers\btmaux.sys [2011-3-8 51712]
S3 btmhsf;btmhsf;C:\Windows\System32\drivers\btmhsf.sys [2011-3-8 274944]
S3 FileMonitor;FileMonitor;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2012-4-11 21384]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2011-11-8 48488]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-5-13 1492840]
S3 iBtFltCoex;iBtFltCoex;C:\Windows\System32\drivers\iBtFltCoex.sys [2011-3-22 59904]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-5-2 340240]
S3 RegFilter;RegFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys [2012-4-11 33184]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\rtsuvstor.sys [2011-10-22 290920]
S3 UrlFilter;UrlFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys [2012-4-11 21872]
S3 WinRing0_1_2_0;WinRing0_1_2_0;C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [2012-5-7 14544]
S4 AdvancedSystemCareService5;Advanced SystemCare Service 5;C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe [2012-4-3 913752]
S4 AMPPALR3;Intel® Centrino® Bluetooth 3.0 + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-4-21 1136640]
S4 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-3-30 923984]
S4 Bluetooth Media Service;Bluetooth Media Service;C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-3-30 1321296]
S4 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-3-30 1001808]
S4 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-4-21 134928]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2013-01-15 14:58:41 54072 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2013-01-15 14:58:39 984144 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2013-01-15 14:58:39 71600 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2013-01-15 14:57:32 41224 ----a-w- C:\Windows\avastSS.scr
2013-01-15 14:32:58 -------- d-----w- C:\_OTM
2013-01-14 15:57:23 -------- d-----w- C:\Users\Emilio\AppData\Roaming\LibreOffice
2013-01-14 15:56:07 -------- d-----w- C:\Program Files (x86)\LibreOffice 3.6
2012-12-30 11:54:29 -------- d-----w- C:\ProgramData\AVAST Software
2012-12-30 11:54:29 -------- d-----w- C:\Program Files\AVAST Software
2012-12-28 20:21:17 -------- d-----w- C:\Windows\SysWow64\Remedy
2012-12-28 15:48:12 -------- d-----w- C:\Users\Emilio\AppData\Roaming\Hive Cluster
.
==================== Find3M ====================
.
2013-01-15 14:34:19 45056 ----a-w- C:\Windows\System32\acovcnt.exe
2013-01-15 14:14:57 281768 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr
2013-01-15 14:14:57 281768 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
2013-01-15 14:14:06 103736 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0
2012-12-05 11:55:57 559104 ----a-w- C:\Windows\apppatch\AcLayers.dll
2012-12-05 11:55:57 347648 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
2012-12-05 11:55:57 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2012-11-13 22:13:10 307712 ----a-w- C:\Windows\System32\SearchIndexer.dll
2012-11-13 12:16:32 30592 ----a-w- C:\Windows\SysWow64\drivers\HWiNFO64A.SYS
2012-11-12 15:06:58 1656688 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2012-11-12 15:05:39 574464 ----a-w- C:\Windows\System32\d3d10level9.dll
2012-11-12 15:05:39 490496 ----a-w- C:\Windows\SysWow64\d3d10level9.dll
2012-10-27 14:39:11 5505904 ----a-w- C:\Windows\System32\ntoskrnl.exe
2012-10-27 14:39:11 3958128 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2012-10-27 14:39:10 3902832 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2012-10-27 14:38:33 714752 ----a-w- C:\Windows\System32\kerberos.dll
2012-10-27 14:38:33 541184 ----a-w- C:\Windows\SysWow64\kerberos.dll
2012-10-27 14:37:47 182272 ----a-w- C:\Windows\System32\cryptsvc.dll
2012-10-27 14:37:47 1462784 ----a-w- C:\Windows\System32\crypt32.dll
2012-10-27 14:37:47 140288 ----a-w- C:\Windows\System32\cryptnet.dll
2012-10-27 14:37:47 139264 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
2012-10-27 14:37:47 1157632 ----a-w- C:\Windows\SysWow64\crypt32.dll
2012-10-27 14:37:47 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2012-10-27 14:36:03 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2012-10-27 14:36:03 2048 ----a-w- C:\Windows\System32\tzres.dll
2012-10-27 14:33:59 220160 ----a-w- C:\Windows\System32\wintrust.dll
2012-10-27 14:33:59 172544 ----a-w- C:\Windows\SysWow64\wintrust.dll
2012-10-27 14:32:58 599040 ----a-w- C:\Windows\System32\vbscript.dll
2012-10-27 14:32:58 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2012-10-27 14:32:58 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2012-10-27 14:32:58 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2012-10-27 14:32:58 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2012-10-27 14:32:58 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2012-10-27 14:32:58 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2012-10-27 14:32:58 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2012-10-27 14:32:58 1392128 ----a-w- C:\Windows\System32\wininet.dll
2012-10-27 14:32:58 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-10-27 14:32:57 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2012-10-27 14:32:57 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2012-10-18 13:18:52 973880 ----a-w- C:\Program Files (x86)\UiComponentLib.dll
2012-10-18 13:18:52 72760 ----a-w- C:\Program Files (x86)\EmpireConsole.dll
2012-10-18 13:18:52 56376 ----a-w- C:\Program Files (x86)\Memory.dll
2012-10-18 13:18:52 470072 ----a-w- C:\Program Files (x86)\CAUtilsPC32DLL.dll
2012-10-18 13:18:52 4496440 ----a-w- C:\Program Files (x86)\EmpireUtility.dll
2012-10-18 13:18:52 35896 ----a-w- C:\Program Files (x86)\CALibsPC32DLL.dll
2012-10-18 13:18:52 175160 ----a-w- C:\Program Files (x86)\Lua.dll
2012-10-18 13:18:52 15416 ----a-w- C:\Program Files (x86)\profiler.dll
2012-10-18 13:18:52 1485880 ----a-w- C:\Program Files (x86)\Utility.dll
2012-10-18 13:18:52 130104 ----a-w- C:\Program Files (x86)\EmpireSound.dll
2012-10-18 13:17:26 87288 ----a-w- C:\Program Files (x86)\steam_api.dll
2012-10-18 13:17:26 444416 ----a-w- C:\Program Files (x86)\mss32.dll
2012-10-18 13:17:26 171008 ----a-w- C:\Program Files (x86)\binkw32.dll
.
============= FINISH: 18:02:23,64 ===============
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalé načítání internetu + ztráta výkonu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119521
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé načítání internetu + ztráta výkonu
1. Odinstalujte vše od IOBit. Tímto čínským software si lze snadno poškodit systém.
2. Dejte log ComboFix:
2. Dejte log ComboFix:
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
pote spustte aplikaci pod uctem s administratorskym opravnenim
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se
jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine
aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,
pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k
nezadoucim kolizim s rezidentem antispyware
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé načítání internetu + ztráta výkonu
Chvilku to trvalo, omlouvám se:
ComboFix 13-01-15.02 - Emilio 15.01.2013 18:37:38.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.4007.2024 [GMT 1:00]
Spuštěný z: c:\users\Emilio\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\programdata\Roaming
c:\windows\msvcr71.dll
c:\windows\SysWow64\update
c:\windows\SysWow64\update\diablo121016.cl
c:\windows\SysWow64\update\diakgcn121016.cl
c:\windows\SysWow64\update\igfxupdate.exe
c:\windows\SysWow64\update\libcurl-4.dll
c:\windows\SysWow64\update\libeay32.dll
c:\windows\SysWow64\update\libidn-11.dll
c:\windows\SysWow64\update\libusb-1.0.dll
c:\windows\SysWow64\update\phatk121016.cl
c:\windows\SysWow64\update\poclbm121016.cl
c:\windows\SysWow64\update\poclbm121016GeForce GT 540Mgv1w256l4.bin
c:\windows\SysWow64\update\pthreadGC2.dll
c:\windows\SysWow64\update\scrypt121016.cl
c:\windows\SysWow64\update\ssleay32.dll
c:\windows\SysWow64\update\zlib1.dll
.
c:\windows\SysWow64\drivers\ntfs.sys . . . je infikován!!
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-12-15 do 2013-01-15 )))))))))))))))))))))))))))))))
.
.
2013-01-15 14:58 . 2012-10-30 22:51 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-01-15 14:58 . 2012-10-30 22:51 370288 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-01-15 14:58 . 2012-10-30 22:51 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-01-15 14:58 . 2012-10-15 16:59 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-01-15 14:58 . 2012-10-30 22:51 984144 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-01-15 14:58 . 2012-10-30 22:51 71600 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-01-15 14:58 . 2012-10-30 22:50 285328 ----a-w- c:\windows\system32\aswBoot.exe
2013-01-15 14:57 . 2012-10-30 22:51 41224 ----a-w- c:\windows\avastSS.scr
2013-01-15 14:57 . 2012-10-30 22:50 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2013-01-15 14:32 . 2013-01-15 14:32 -------- d-----w- C:\_OTM
2013-01-14 15:57 . 2013-01-14 15:57 -------- d-----w- c:\users\Emilio\AppData\Roaming\LibreOffice
2013-01-14 15:56 . 2013-01-14 15:56 -------- d-----w- c:\program files (x86)\LibreOffice 3.6
2012-12-30 11:54 . 2013-01-15 14:56 -------- d-----w- c:\programdata\AVAST Software
2012-12-30 11:54 . 2013-01-15 14:56 -------- d-----w- c:\program files\AVAST Software
2012-12-28 20:21 . 2012-12-28 20:21 -------- d-----w- c:\windows\SysWow64\Remedy
2012-12-28 15:48 . 2012-12-28 15:48 -------- d-----w- c:\users\Emilio\AppData\Roaming\Hive Cluster
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-15 14:34 . 2011-10-22 01:33 45056 ----a-w- c:\windows\system32\acovcnt.exe
2013-01-15 14:14 . 2011-10-21 23:33 281768 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-01-15 14:14 . 2011-10-21 22:31 281768 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-01-15 14:14 . 2011-10-21 22:31 103736 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2012-12-05 11:55 . 2012-12-05 11:55 559104 ----a-w- c:\windows\apppatch\AcLayers.dll
2012-12-05 11:55 . 2012-12-05 11:55 347648 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2012-12-05 11:55 . 2012-12-05 11:55 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2012-11-30 22:38 . 2011-10-21 21:32 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-11-30 22:38 . 2011-10-21 21:32 483952 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-11-19 00:01 . 2012-12-09 14:13 9125352 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EF8740A4-DA61-413D-8250-6A89A06B4AEF}\mpengine.dll
2012-11-13 22:13 . 2012-11-13 17:34 307712 ----a-w- c:\windows\system32\SearchIndexer.dll
2012-11-13 12:16 . 2012-11-13 12:16 30592 ----a-w- c:\windows\SysWow64\drivers\HWiNFO64A.SYS
2012-11-12 15:08 . 2012-11-12 15:08 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2012-11-12 15:08 . 2012-11-12 15:08 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2012-11-12 15:08 . 2012-11-12 15:08 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-11-12 15:08 . 2012-11-12 15:08 425984 ----a-w- c:\windows\system32\KernelBase.dll
2012-11-12 15:08 . 2012-11-12 15:08 362496 ----a-w- c:\windows\system32\wow64win.dll
2012-11-12 15:08 . 2012-11-12 15:08 338432 ----a-w- c:\windows\system32\conhost.exe
2012-11-12 15:08 . 2012-11-12 15:08 274944 ----a-w- c:\windows\SysWow64\KernelBase.dll
2012-11-12 15:08 . 2012-11-12 15:08 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2012-11-12 15:08 . 2012-11-12 15:08 243200 ----a-w- c:\windows\system32\wow64.dll
2012-11-12 15:08 . 2012-11-12 15:08 215040 ----a-w- c:\windows\system32\winsrv.dll
2012-11-12 15:08 . 2012-11-12 15:08 2048 ----a-w- c:\windows\SysWow64\user.exe
2012-11-12 15:08 . 2012-11-12 15:08 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2012-11-12 15:08 . 2012-11-12 15:08 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2012-11-12 15:08 . 2012-11-12 15:08 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2012-11-12 15:08 . 2012-11-12 15:08 1162240 ----a-w- c:\windows\system32\kernel32.dll
2012-11-12 15:08 . 2012-11-12 15:08 6144 ---ha-w- c:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-11-12 15:06 . 2012-11-12 15:06 1656688 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-11-12 15:05 . 2012-11-12 15:05 574464 ----a-w- c:\windows\system32\d3d10level9.dll
2012-11-12 15:05 . 2012-11-12 15:05 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2012-10-27 14:39 . 2012-10-27 14:39 5505904 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-27 14:39 . 2012-10-27 14:39 3958128 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-10-27 14:39 . 2012-10-27 14:39 3902832 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-10-27 14:38 . 2012-10-27 14:38 714752 ----a-w- c:\windows\system32\kerberos.dll
2012-10-27 14:38 . 2012-10-27 14:38 541184 ----a-w- c:\windows\SysWow64\kerberos.dll
2012-10-27 14:37 . 2012-10-27 14:37 182272 ----a-w- c:\windows\system32\cryptsvc.dll
2012-10-27 14:37 . 2012-10-27 14:37 1462784 ----a-w- c:\windows\system32\crypt32.dll
2012-10-27 14:37 . 2012-10-27 14:37 140288 ----a-w- c:\windows\system32\cryptnet.dll
2012-10-27 14:37 . 2012-10-27 14:37 139264 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-10-27 14:37 . 2012-10-27 14:37 1157632 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-10-27 14:37 . 2012-10-27 14:37 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2012-10-27 14:36 . 2012-10-27 14:36 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-10-27 14:36 . 2012-10-27 14:36 2048 ----a-w- c:\windows\system32\tzres.dll
2012-10-27 14:33 . 2012-10-27 14:33 220160 ----a-w- c:\windows\system32\wintrust.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-08-17 5732992]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2010-09-23 1601536]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
R3 ALSysIO;ALSysIO; [x]
R3 AMPPALP;Protokol Intel(R) Centrino(R) Bluetooth 3.0 + High Speed;c:\windows\system32\DRIVERS\amppal.sys [2011-04-21 294912]
R3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys [2011-03-08 51712]
R3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys [2011-03-08 274944]
R3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys [2011-03-22 59904]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-05-02 340240]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUVStor.sys [2010-08-03 290920]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-06-22 1255736]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [x]
R4 AMPPALR3;Intel® Centrino® Bluetooth 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-04-21 1136640]
R4 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-03-30 923984]
R4 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [2011-03-30 1321296]
R4 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [2011-03-30 1001808]
R4 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-04-21 134928]
R4 TurboBoost;Intel(R) Turbo Boost Technology Monitor;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-04-16 134928]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-10-08 30056]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-05-25 17536]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [2012-11-13 30592]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [2011-03-03 379520]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2010-04-16 13832]
S3 AMPPAL;Virtuální adaptér Intel(R) Centrino(R) Bluetooth 3.0 + High Speed;c:\windows\system32\DRIVERS\AMPPAL.sys [2011-04-21 294912]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys [2011-06-02 128488]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys [2011-06-02 401896]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2013-01-13 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000Core.job
- c:\users\Emilio\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-03 05:07]
.
2013-01-15 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000UA.job
- c:\users\Emilio\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-03 05:07]
.
2013-01-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-01-15 18:38]
.
2013-01-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-01-15 18:38]
.
2013-01-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000Core.job
- c:\users\Emilio\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-08 12:19]
.
2013-01-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000UA.job
- c:\users\Emilio\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-08 12:19]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IntelPAN"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-05-02 1935120]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2011-03-30 10372368]
"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-08-31 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-08-31 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-08-31 416024]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-05-17 2226280]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://search.babylon.com/?affID=114435&tt=3812_2&babsrc=HP_ss&mntrId=3e0b7646000000000000ac72891e0709
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~4\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
URLSearchHooks-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
BHO-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
Toolbar-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
WebBrowser-{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5} - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
HKLM-Run-SynAsusAcpi - c:\program files (x86)\Synaptics\SynTP\SynAsusAcpi.exe
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2810063392-3372815390-296019489-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-2810063392-3372815390-296019489-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}]
@Denied: (A 2) (Everyone)
@="IFlashBroker"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}]
@Denied: (A 2) (Everyone)
@="IFlashBroker2"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\ASUS\SmartLogon\sensorsrv.exe
c:\program files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
c:\windows\AsScrPro.exe
c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
.
**************************************************************************
.
Celkový čas: 2013-01-15 19:10:00 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-01-15 18:09
.
Před spuštěním: Volných bajtů: 398 667 190 272
Po spuštění: Volných bajtů: 398 466 097 152
.
- - End Of File - - A2B78F8EAF21DBB2255DE5826672858B
ComboFix 13-01-15.02 - Emilio 15.01.2013 18:37:38.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.4007.2024 [GMT 1:00]
Spuštěný z: c:\users\Emilio\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\programdata\Roaming
c:\windows\msvcr71.dll
c:\windows\SysWow64\update
c:\windows\SysWow64\update\diablo121016.cl
c:\windows\SysWow64\update\diakgcn121016.cl
c:\windows\SysWow64\update\igfxupdate.exe
c:\windows\SysWow64\update\libcurl-4.dll
c:\windows\SysWow64\update\libeay32.dll
c:\windows\SysWow64\update\libidn-11.dll
c:\windows\SysWow64\update\libusb-1.0.dll
c:\windows\SysWow64\update\phatk121016.cl
c:\windows\SysWow64\update\poclbm121016.cl
c:\windows\SysWow64\update\poclbm121016GeForce GT 540Mgv1w256l4.bin
c:\windows\SysWow64\update\pthreadGC2.dll
c:\windows\SysWow64\update\scrypt121016.cl
c:\windows\SysWow64\update\ssleay32.dll
c:\windows\SysWow64\update\zlib1.dll
.
c:\windows\SysWow64\drivers\ntfs.sys . . . je infikován!!
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-12-15 do 2013-01-15 )))))))))))))))))))))))))))))))
.
.
2013-01-15 14:58 . 2012-10-30 22:51 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-01-15 14:58 . 2012-10-30 22:51 370288 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-01-15 14:58 . 2012-10-30 22:51 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-01-15 14:58 . 2012-10-15 16:59 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-01-15 14:58 . 2012-10-30 22:51 984144 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-01-15 14:58 . 2012-10-30 22:51 71600 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-01-15 14:58 . 2012-10-30 22:50 285328 ----a-w- c:\windows\system32\aswBoot.exe
2013-01-15 14:57 . 2012-10-30 22:51 41224 ----a-w- c:\windows\avastSS.scr
2013-01-15 14:57 . 2012-10-30 22:50 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2013-01-15 14:32 . 2013-01-15 14:32 -------- d-----w- C:\_OTM
2013-01-14 15:57 . 2013-01-14 15:57 -------- d-----w- c:\users\Emilio\AppData\Roaming\LibreOffice
2013-01-14 15:56 . 2013-01-14 15:56 -------- d-----w- c:\program files (x86)\LibreOffice 3.6
2012-12-30 11:54 . 2013-01-15 14:56 -------- d-----w- c:\programdata\AVAST Software
2012-12-30 11:54 . 2013-01-15 14:56 -------- d-----w- c:\program files\AVAST Software
2012-12-28 20:21 . 2012-12-28 20:21 -------- d-----w- c:\windows\SysWow64\Remedy
2012-12-28 15:48 . 2012-12-28 15:48 -------- d-----w- c:\users\Emilio\AppData\Roaming\Hive Cluster
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-15 14:34 . 2011-10-22 01:33 45056 ----a-w- c:\windows\system32\acovcnt.exe
2013-01-15 14:14 . 2011-10-21 23:33 281768 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-01-15 14:14 . 2011-10-21 22:31 281768 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-01-15 14:14 . 2011-10-21 22:31 103736 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2012-12-05 11:55 . 2012-12-05 11:55 559104 ----a-w- c:\windows\apppatch\AcLayers.dll
2012-12-05 11:55 . 2012-12-05 11:55 347648 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2012-12-05 11:55 . 2012-12-05 11:55 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2012-11-30 22:38 . 2011-10-21 21:32 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-11-30 22:38 . 2011-10-21 21:32 483952 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-11-19 00:01 . 2012-12-09 14:13 9125352 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EF8740A4-DA61-413D-8250-6A89A06B4AEF}\mpengine.dll
2012-11-13 22:13 . 2012-11-13 17:34 307712 ----a-w- c:\windows\system32\SearchIndexer.dll
2012-11-13 12:16 . 2012-11-13 12:16 30592 ----a-w- c:\windows\SysWow64\drivers\HWiNFO64A.SYS
2012-11-12 15:08 . 2012-11-12 15:08 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2012-11-12 15:08 . 2012-11-12 15:08 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2012-11-12 15:08 . 2012-11-12 15:08 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-11-12 15:08 . 2012-11-12 15:08 425984 ----a-w- c:\windows\system32\KernelBase.dll
2012-11-12 15:08 . 2012-11-12 15:08 362496 ----a-w- c:\windows\system32\wow64win.dll
2012-11-12 15:08 . 2012-11-12 15:08 338432 ----a-w- c:\windows\system32\conhost.exe
2012-11-12 15:08 . 2012-11-12 15:08 274944 ----a-w- c:\windows\SysWow64\KernelBase.dll
2012-11-12 15:08 . 2012-11-12 15:08 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2012-11-12 15:08 . 2012-11-12 15:08 243200 ----a-w- c:\windows\system32\wow64.dll
2012-11-12 15:08 . 2012-11-12 15:08 215040 ----a-w- c:\windows\system32\winsrv.dll
2012-11-12 15:08 . 2012-11-12 15:08 2048 ----a-w- c:\windows\SysWow64\user.exe
2012-11-12 15:08 . 2012-11-12 15:08 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2012-11-12 15:08 . 2012-11-12 15:08 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2012-11-12 15:08 . 2012-11-12 15:08 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2012-11-12 15:08 . 2012-11-12 15:08 1162240 ----a-w- c:\windows\system32\kernel32.dll
2012-11-12 15:08 . 2012-11-12 15:08 6144 ---ha-w- c:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-11-12 15:06 . 2012-11-12 15:06 1656688 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-11-12 15:05 . 2012-11-12 15:05 574464 ----a-w- c:\windows\system32\d3d10level9.dll
2012-11-12 15:05 . 2012-11-12 15:05 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2012-10-27 14:39 . 2012-10-27 14:39 5505904 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-27 14:39 . 2012-10-27 14:39 3958128 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-10-27 14:39 . 2012-10-27 14:39 3902832 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-10-27 14:38 . 2012-10-27 14:38 714752 ----a-w- c:\windows\system32\kerberos.dll
2012-10-27 14:38 . 2012-10-27 14:38 541184 ----a-w- c:\windows\SysWow64\kerberos.dll
2012-10-27 14:37 . 2012-10-27 14:37 182272 ----a-w- c:\windows\system32\cryptsvc.dll
2012-10-27 14:37 . 2012-10-27 14:37 1462784 ----a-w- c:\windows\system32\crypt32.dll
2012-10-27 14:37 . 2012-10-27 14:37 140288 ----a-w- c:\windows\system32\cryptnet.dll
2012-10-27 14:37 . 2012-10-27 14:37 139264 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-10-27 14:37 . 2012-10-27 14:37 1157632 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-10-27 14:37 . 2012-10-27 14:37 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2012-10-27 14:36 . 2012-10-27 14:36 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-10-27 14:36 . 2012-10-27 14:36 2048 ----a-w- c:\windows\system32\tzres.dll
2012-10-27 14:33 . 2012-10-27 14:33 220160 ----a-w- c:\windows\system32\wintrust.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-08-17 5732992]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2010-09-23 1601536]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
R3 ALSysIO;ALSysIO; [x]
R3 AMPPALP;Protokol Intel(R) Centrino(R) Bluetooth 3.0 + High Speed;c:\windows\system32\DRIVERS\amppal.sys [2011-04-21 294912]
R3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys [2011-03-08 51712]
R3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys [2011-03-08 274944]
R3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys [2011-03-22 59904]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-05-02 340240]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUVStor.sys [2010-08-03 290920]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-06-22 1255736]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [x]
R4 AMPPALR3;Intel® Centrino® Bluetooth 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-04-21 1136640]
R4 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-03-30 923984]
R4 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [2011-03-30 1321296]
R4 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [2011-03-30 1001808]
R4 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-04-21 134928]
R4 TurboBoost;Intel(R) Turbo Boost Technology Monitor;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-04-16 134928]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-10-08 30056]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-05-25 17536]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [2012-11-13 30592]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [2011-03-03 379520]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2010-04-16 13832]
S3 AMPPAL;Virtuální adaptér Intel(R) Centrino(R) Bluetooth 3.0 + High Speed;c:\windows\system32\DRIVERS\AMPPAL.sys [2011-04-21 294912]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys [2011-06-02 128488]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys [2011-06-02 401896]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2013-01-13 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000Core.job
- c:\users\Emilio\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-03 05:07]
.
2013-01-15 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000UA.job
- c:\users\Emilio\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-03 05:07]
.
2013-01-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-01-15 18:38]
.
2013-01-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-01-15 18:38]
.
2013-01-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000Core.job
- c:\users\Emilio\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-08 12:19]
.
2013-01-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000UA.job
- c:\users\Emilio\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-08 12:19]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IntelPAN"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-05-02 1935120]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2011-03-30 10372368]
"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-08-31 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-08-31 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-08-31 416024]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-05-17 2226280]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://search.babylon.com/?affID=114435&tt=3812_2&babsrc=HP_ss&mntrId=3e0b7646000000000000ac72891e0709
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~4\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
URLSearchHooks-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
BHO-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
Toolbar-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
WebBrowser-{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5} - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
HKLM-Run-SynAsusAcpi - c:\program files (x86)\Synaptics\SynTP\SynAsusAcpi.exe
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2810063392-3372815390-296019489-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-2810063392-3372815390-296019489-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}]
@Denied: (A 2) (Everyone)
@="IFlashBroker"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}]
@Denied: (A 2) (Everyone)
@="IFlashBroker2"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\ASUS\SmartLogon\sensorsrv.exe
c:\program files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
c:\windows\AsScrPro.exe
c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
.
**************************************************************************
.
Celkový čas: 2013-01-15 19:10:00 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-01-15 18:09
.
Před spuštěním: Volných bajtů: 398 667 190 272
Po spuštění: Volných bajtů: 398 466 097 152
.
- - End Of File - - A2B78F8EAF21DBB2255DE5826672858B
-
Rudy
- Site Admin
- Příspěvky: 119521
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé načítání internetu + ztráta výkonu
Ještě dočistíme. Přesuňte ComboFix na plochu. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jakjo CFScript.txt. pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.KillAll::
File::
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000Core.job
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000UA.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000UA.job
Folder::
c:\users\Emilio\AppData\Local\Facebook\Update
Collect::
c:\windows\system32\acovcnt.exe
RegLock::
[HKEY_USERS\S-1-5-21-2810063392-3372815390-296019489-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
[HKEY_USERS\S-1-5-21-2810063392-3372815390-296019489-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
Reboot::
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé načítání internetu + ztráta výkonu
Udělal jsem vše podle návodu, snad je to správně:
ComboFix 13-01-15.02 - Emilio 15.01.2013 21:03:01.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.4007.2506 [GMT 1:00]
Spuštěný z: c:\users\Emilio\Downloads\ComboFix.exe
Použité ovládací přepínače :: c:\users\Emilio\Desktop\CFScript.txt.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000Core.job"
"c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000UA.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000Core.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000UA.job"
.
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Emilio\AppData\Local\Facebook\Update
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\FacebookCrashHandler.exe
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\FacebookUpdate.exe
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\FacebookUpdateHelper.msi
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ar.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_bg.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_bn.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ca.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_cs.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_da.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_de.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_el.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_en-GB.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_en.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_es-419.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_es.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_et.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fa.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fi.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fil.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fr.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_gu.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hi.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hr.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hu.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_id.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_is.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_it.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_iw.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ja.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_kn.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ko.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_lt.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_lv.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ml.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_mr.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ms.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_nl.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_no.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_or.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pl.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pt-BR.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pt-PT.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ro.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ru.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sk.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sl.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sr.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sv.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ta.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_te.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_th.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_tr.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_uk.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ur.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_vi.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_zh-CN.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_zh-TW.dll
c:\users\Emilio\AppData\Local\Facebook\Update\FacebookUpdate.exe
c:\windows\system32\acovcnt.exe
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000Core.job
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000UA.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000UA.job
.
Nakažená kopie c:\windows\SysWow64\userinit.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-12-15 do 2013-01-15 )))))))))))))))))))))))))))))))
.
.
2013-01-15 20:10 . 2013-01-15 20:10 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-01-15 20:10 . 2013-01-15 20:10 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-01-15 14:58 . 2012-10-30 22:51 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-01-15 14:58 . 2012-10-30 22:51 370288 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-01-15 14:58 . 2012-10-30 22:51 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-01-15 14:58 . 2012-10-15 16:59 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-01-15 14:58 . 2012-10-30 22:51 984144 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-01-15 14:58 . 2012-10-30 22:51 71600 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-01-15 14:58 . 2012-10-30 22:50 285328 ----a-w- c:\windows\system32\aswBoot.exe
2013-01-15 14:57 . 2012-10-30 22:51 41224 ----a-w- c:\windows\avastSS.scr
2013-01-15 14:57 . 2012-10-30 22:50 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2013-01-15 14:32 . 2013-01-15 14:32 -------- d-----w- C:\_OTM
2013-01-14 15:57 . 2013-01-14 15:57 -------- d-----w- c:\users\Emilio\AppData\Roaming\LibreOffice
2013-01-14 15:56 . 2013-01-14 15:56 -------- d-----w- c:\program files (x86)\LibreOffice 3.6
2012-12-30 11:54 . 2013-01-15 14:56 -------- d-----w- c:\programdata\AVAST Software
2012-12-30 11:54 . 2013-01-15 14:56 -------- d-----w- c:\program files\AVAST Software
2012-12-28 20:21 . 2012-12-28 20:21 -------- d-----w- c:\windows\SysWow64\Remedy
2012-12-28 15:48 . 2012-12-28 15:48 -------- d-----w- c:\users\Emilio\AppData\Roaming\Hive Cluster
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-15 18:26 . 2011-10-21 23:33 281768 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-01-15 18:26 . 2011-10-21 22:31 281768 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-01-15 18:25 . 2011-10-21 22:31 103736 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2012-12-05 11:55 . 2012-12-05 11:55 559104 ----a-w- c:\windows\apppatch\AcLayers.dll
2012-12-05 11:55 . 2012-12-05 11:55 347648 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2012-12-05 11:55 . 2012-12-05 11:55 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2012-11-30 22:38 . 2011-10-21 21:32 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-11-30 22:38 . 2011-10-21 21:32 483952 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-11-19 00:01 . 2012-12-09 14:13 9125352 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EF8740A4-DA61-413D-8250-6A89A06B4AEF}\mpengine.dll
2012-11-13 22:13 . 2012-11-13 17:34 307712 ----a-w- c:\windows\system32\SearchIndexer.dll
2012-11-13 12:16 . 2012-11-13 12:16 30592 ----a-w- c:\windows\SysWow64\drivers\HWiNFO64A.SYS
2012-11-12 15:08 . 2012-11-12 15:08 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2012-11-12 15:08 . 2012-11-12 15:08 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2012-11-12 15:08 . 2012-11-12 15:08 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-11-12 15:08 . 2012-11-12 15:08 425984 ----a-w- c:\windows\system32\KernelBase.dll
2012-11-12 15:08 . 2012-11-12 15:08 362496 ----a-w- c:\windows\system32\wow64win.dll
2012-11-12 15:08 . 2012-11-12 15:08 338432 ----a-w- c:\windows\system32\conhost.exe
2012-11-12 15:08 . 2012-11-12 15:08 274944 ----a-w- c:\windows\SysWow64\KernelBase.dll
2012-11-12 15:08 . 2012-11-12 15:08 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2012-11-12 15:08 . 2012-11-12 15:08 243200 ----a-w- c:\windows\system32\wow64.dll
2012-11-12 15:08 . 2012-11-12 15:08 215040 ----a-w- c:\windows\system32\winsrv.dll
2012-11-12 15:08 . 2012-11-12 15:08 2048 ----a-w- c:\windows\SysWow64\user.exe
2012-11-12 15:08 . 2012-11-12 15:08 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2012-11-12 15:08 . 2012-11-12 15:08 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2012-11-12 15:08 . 2012-11-12 15:08 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2012-11-12 15:08 . 2012-11-12 15:08 1162240 ----a-w- c:\windows\system32\kernel32.dll
2012-11-12 15:08 . 2012-11-12 15:08 6144 ---ha-w- c:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-11-12 15:06 . 2012-11-12 15:06 1656688 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-11-12 15:05 . 2012-11-12 15:05 574464 ----a-w- c:\windows\system32\d3d10level9.dll
2012-11-12 15:05 . 2012-11-12 15:05 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2012-10-27 14:39 . 2012-10-27 14:39 5505904 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-27 14:39 . 2012-10-27 14:39 3958128 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-10-27 14:39 . 2012-10-27 14:39 3902832 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-10-27 14:38 . 2012-10-27 14:38 714752 ----a-w- c:\windows\system32\kerberos.dll
2012-10-27 14:38 . 2012-10-27 14:38 541184 ----a-w- c:\windows\SysWow64\kerberos.dll
2012-10-27 14:37 . 2012-10-27 14:37 182272 ----a-w- c:\windows\system32\cryptsvc.dll
2012-10-27 14:37 . 2012-10-27 14:37 1462784 ----a-w- c:\windows\system32\crypt32.dll
2012-10-27 14:37 . 2012-10-27 14:37 140288 ----a-w- c:\windows\system32\cryptnet.dll
2012-10-27 14:37 . 2012-10-27 14:37 139264 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-10-27 14:37 . 2012-10-27 14:37 1157632 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-10-27 14:37 . 2012-10-27 14:37 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2012-10-27 14:36 . 2012-10-27 14:36 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-10-27 14:36 . 2012-10-27 14:36 2048 ----a-w- c:\windows\system32\tzres.dll
2012-10-27 14:33 . 2012-10-27 14:33 220160 ----a-w- c:\windows\system32\wintrust.dll
2012-10-27 14:33 . 2012-10-27 14:33 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-08-17 5732992]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2010-09-23 1601536]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
R3 ALSysIO;ALSysIO; [x]
R3 AMPPALP;Protokol Intel(R) Centrino(R) Bluetooth 3.0 + High Speed;c:\windows\system32\DRIVERS\amppal.sys [2011-04-21 294912]
R3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys [2011-03-08 51712]
R3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys [2011-03-08 274944]
R3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys [2011-03-22 59904]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-05-02 340240]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUVStor.sys [2010-08-03 290920]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-06-22 1255736]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [x]
R4 AMPPALR3;Intel® Centrino® Bluetooth 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-04-21 1136640]
R4 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-03-30 923984]
R4 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [2011-03-30 1321296]
R4 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [2011-03-30 1001808]
R4 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-04-21 134928]
R4 TurboBoost;Intel(R) Turbo Boost Technology Monitor;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-04-16 134928]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-10-08 30056]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-05-25 17536]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [2012-11-13 30592]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [2011-03-03 379520]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2010-04-16 13832]
S3 AMPPAL;Virtuální adaptér Intel(R) Centrino(R) Bluetooth 3.0 + High Speed;c:\windows\system32\DRIVERS\AMPPAL.sys [2011-04-21 294912]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys [2011-06-02 128488]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys [2011-06-02 401896]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
.
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"SynAsusAcpi"="c:\program files (x86)\Synaptics\SynTP\SynAsusAcpi.exe" [BU]
"IntelPAN"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-05-02 1935120]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2011-03-30 10372368]
"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-08-31 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-08-31 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-08-31 416024]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-05-17 2226280]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://search.babylon.com/?affID=114435&tt=3812_2&babsrc=HP_ss&mntrId=3e0b7646000000000000ac72891e0709
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~4\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
Toolbar-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
.
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\ASUS\SmartLogon\smartlogon.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\ASUS\SmartLogon\sensorsrv.exe
c:\program files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
c:\windows\AsScrPro.exe
c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
.
**************************************************************************
.
Celkový čas: 2013-01-15 21:16:59 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-01-15 20:16
ComboFix2.txt 2013-01-15 18:10
.
Před spuštěním: Volných bajtů: 399 057 022 976
Po spuštění: Volných bajtů: 398 871 715 840
.
- - End Of File - - AE36507C709FAA6E634AB92F046A2498
Nahr nˇ probŘhlo ŁspŘçnŘ
ComboFix 13-01-15.02 - Emilio 15.01.2013 21:03:01.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.4007.2506 [GMT 1:00]
Spuštěný z: c:\users\Emilio\Downloads\ComboFix.exe
Použité ovládací přepínače :: c:\users\Emilio\Desktop\CFScript.txt.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000Core.job"
"c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000UA.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000Core.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000UA.job"
.
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Emilio\AppData\Local\Facebook\Update
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\FacebookCrashHandler.exe
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\FacebookUpdate.exe
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\FacebookUpdateHelper.msi
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ar.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_bg.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_bn.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ca.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_cs.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_da.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_de.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_el.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_en-GB.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_en.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_es-419.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_es.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_et.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fa.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fi.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fil.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fr.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_gu.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hi.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hr.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hu.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_id.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_is.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_it.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_iw.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ja.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_kn.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ko.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_lt.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_lv.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ml.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_mr.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ms.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_nl.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_no.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_or.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pl.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pt-BR.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pt-PT.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ro.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ru.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sk.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sl.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sr.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sv.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ta.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_te.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_th.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_tr.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_uk.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ur.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_vi.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_zh-CN.dll
c:\users\Emilio\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_zh-TW.dll
c:\users\Emilio\AppData\Local\Facebook\Update\FacebookUpdate.exe
c:\windows\system32\acovcnt.exe
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000Core.job
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000UA.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2810063392-3372815390-296019489-1000UA.job
.
Nakažená kopie c:\windows\SysWow64\userinit.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-12-15 do 2013-01-15 )))))))))))))))))))))))))))))))
.
.
2013-01-15 20:10 . 2013-01-15 20:10 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-01-15 20:10 . 2013-01-15 20:10 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-01-15 14:58 . 2012-10-30 22:51 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-01-15 14:58 . 2012-10-30 22:51 370288 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-01-15 14:58 . 2012-10-30 22:51 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-01-15 14:58 . 2012-10-15 16:59 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-01-15 14:58 . 2012-10-30 22:51 984144 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-01-15 14:58 . 2012-10-30 22:51 71600 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-01-15 14:58 . 2012-10-30 22:50 285328 ----a-w- c:\windows\system32\aswBoot.exe
2013-01-15 14:57 . 2012-10-30 22:51 41224 ----a-w- c:\windows\avastSS.scr
2013-01-15 14:57 . 2012-10-30 22:50 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2013-01-15 14:32 . 2013-01-15 14:32 -------- d-----w- C:\_OTM
2013-01-14 15:57 . 2013-01-14 15:57 -------- d-----w- c:\users\Emilio\AppData\Roaming\LibreOffice
2013-01-14 15:56 . 2013-01-14 15:56 -------- d-----w- c:\program files (x86)\LibreOffice 3.6
2012-12-30 11:54 . 2013-01-15 14:56 -------- d-----w- c:\programdata\AVAST Software
2012-12-30 11:54 . 2013-01-15 14:56 -------- d-----w- c:\program files\AVAST Software
2012-12-28 20:21 . 2012-12-28 20:21 -------- d-----w- c:\windows\SysWow64\Remedy
2012-12-28 15:48 . 2012-12-28 15:48 -------- d-----w- c:\users\Emilio\AppData\Roaming\Hive Cluster
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-15 18:26 . 2011-10-21 23:33 281768 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-01-15 18:26 . 2011-10-21 22:31 281768 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-01-15 18:25 . 2011-10-21 22:31 103736 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2012-12-05 11:55 . 2012-12-05 11:55 559104 ----a-w- c:\windows\apppatch\AcLayers.dll
2012-12-05 11:55 . 2012-12-05 11:55 347648 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2012-12-05 11:55 . 2012-12-05 11:55 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2012-11-30 22:38 . 2011-10-21 21:32 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-11-30 22:38 . 2011-10-21 21:32 483952 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-11-19 00:01 . 2012-12-09 14:13 9125352 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EF8740A4-DA61-413D-8250-6A89A06B4AEF}\mpengine.dll
2012-11-13 22:13 . 2012-11-13 17:34 307712 ----a-w- c:\windows\system32\SearchIndexer.dll
2012-11-13 12:16 . 2012-11-13 12:16 30592 ----a-w- c:\windows\SysWow64\drivers\HWiNFO64A.SYS
2012-11-12 15:08 . 2012-11-12 15:08 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2012-11-12 15:08 . 2012-11-12 15:08 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2012-11-12 15:08 . 2012-11-12 15:08 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-11-12 15:08 . 2012-11-12 15:08 425984 ----a-w- c:\windows\system32\KernelBase.dll
2012-11-12 15:08 . 2012-11-12 15:08 362496 ----a-w- c:\windows\system32\wow64win.dll
2012-11-12 15:08 . 2012-11-12 15:08 338432 ----a-w- c:\windows\system32\conhost.exe
2012-11-12 15:08 . 2012-11-12 15:08 274944 ----a-w- c:\windows\SysWow64\KernelBase.dll
2012-11-12 15:08 . 2012-11-12 15:08 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2012-11-12 15:08 . 2012-11-12 15:08 243200 ----a-w- c:\windows\system32\wow64.dll
2012-11-12 15:08 . 2012-11-12 15:08 215040 ----a-w- c:\windows\system32\winsrv.dll
2012-11-12 15:08 . 2012-11-12 15:08 2048 ----a-w- c:\windows\SysWow64\user.exe
2012-11-12 15:08 . 2012-11-12 15:08 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2012-11-12 15:08 . 2012-11-12 15:08 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2012-11-12 15:08 . 2012-11-12 15:08 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2012-11-12 15:08 . 2012-11-12 15:08 1162240 ----a-w- c:\windows\system32\kernel32.dll
2012-11-12 15:08 . 2012-11-12 15:08 6144 ---ha-w- c:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-11-12 15:08 . 2012-11-12 15:08 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-11-12 15:06 . 2012-11-12 15:06 1656688 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-11-12 15:05 . 2012-11-12 15:05 574464 ----a-w- c:\windows\system32\d3d10level9.dll
2012-11-12 15:05 . 2012-11-12 15:05 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2012-10-27 14:39 . 2012-10-27 14:39 5505904 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-27 14:39 . 2012-10-27 14:39 3958128 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-10-27 14:39 . 2012-10-27 14:39 3902832 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-10-27 14:38 . 2012-10-27 14:38 714752 ----a-w- c:\windows\system32\kerberos.dll
2012-10-27 14:38 . 2012-10-27 14:38 541184 ----a-w- c:\windows\SysWow64\kerberos.dll
2012-10-27 14:37 . 2012-10-27 14:37 182272 ----a-w- c:\windows\system32\cryptsvc.dll
2012-10-27 14:37 . 2012-10-27 14:37 1462784 ----a-w- c:\windows\system32\crypt32.dll
2012-10-27 14:37 . 2012-10-27 14:37 140288 ----a-w- c:\windows\system32\cryptnet.dll
2012-10-27 14:37 . 2012-10-27 14:37 139264 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-10-27 14:37 . 2012-10-27 14:37 1157632 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-10-27 14:37 . 2012-10-27 14:37 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2012-10-27 14:36 . 2012-10-27 14:36 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-10-27 14:36 . 2012-10-27 14:36 2048 ----a-w- c:\windows\system32\tzres.dll
2012-10-27 14:33 . 2012-10-27 14:33 220160 ----a-w- c:\windows\system32\wintrust.dll
2012-10-27 14:33 . 2012-10-27 14:33 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-08-17 5732992]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2010-09-23 1601536]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
R3 ALSysIO;ALSysIO; [x]
R3 AMPPALP;Protokol Intel(R) Centrino(R) Bluetooth 3.0 + High Speed;c:\windows\system32\DRIVERS\amppal.sys [2011-04-21 294912]
R3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys [2011-03-08 51712]
R3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys [2011-03-08 274944]
R3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys [2011-03-22 59904]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-05-02 340240]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUVStor.sys [2010-08-03 290920]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-06-22 1255736]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [x]
R4 AMPPALR3;Intel® Centrino® Bluetooth 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-04-21 1136640]
R4 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-03-30 923984]
R4 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [2011-03-30 1321296]
R4 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [2011-03-30 1001808]
R4 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-04-21 134928]
R4 TurboBoost;Intel(R) Turbo Boost Technology Monitor;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-04-16 134928]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-10-08 30056]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-05-25 17536]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [2012-11-13 30592]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [2011-03-03 379520]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2010-04-16 13832]
S3 AMPPAL;Virtuální adaptér Intel(R) Centrino(R) Bluetooth 3.0 + High Speed;c:\windows\system32\DRIVERS\AMPPAL.sys [2011-04-21 294912]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys [2011-06-02 128488]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys [2011-06-02 401896]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
.
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"SynAsusAcpi"="c:\program files (x86)\Synaptics\SynTP\SynAsusAcpi.exe" [BU]
"IntelPAN"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-05-02 1935120]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2011-03-30 10372368]
"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-08-31 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-08-31 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-08-31 416024]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-05-17 2226280]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://search.babylon.com/?affID=114435&tt=3812_2&babsrc=HP_ss&mntrId=3e0b7646000000000000ac72891e0709
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~4\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
Toolbar-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
.
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\ASUS\SmartLogon\smartlogon.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\ASUS\SmartLogon\sensorsrv.exe
c:\program files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
c:\windows\AsScrPro.exe
c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
.
**************************************************************************
.
Celkový čas: 2013-01-15 21:16:59 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-01-15 20:16
ComboFix2.txt 2013-01-15 18:10
.
Před spuštěním: Volných bajtů: 399 057 022 976
Po spuštění: Volných bajtů: 398 871 715 840
.
- - End Of File - - AE36507C709FAA6E634AB92F046A2498
Nahr nˇ probŘhlo ŁspŘçnŘ
-
Rudy
- Site Admin
- Příspěvky: 119521
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé načítání internetu + ztráta výkonu
Log již vypadá čistý. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé načítání internetu + ztráta výkonu
Ano, velice děkuji. Internet a videa se nečítají mnohem rychleji. Co se týče výkonu, bude problém v teplotách. Přeci je to jen notebook a je na prach náchylnější. Nechám yyčistit. Ještě jednou děkuji. Jste super 
-
Rudy
- Site Admin
- Příspěvky: 119521
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé načítání internetu + ztráta výkonu
Teploty můžete průběžně kontrolovat pomocí programu Speedfan: http://www.stahuj.centrum.cz/utility_a_ ... /speedfan/ . U NB by neměla max. teplota trvale překračovat 75°C. Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?